CN112601212A - Positioning method, unit and device for private WIFI of intranet - Google Patents
Positioning method, unit and device for private WIFI of intranet Download PDFInfo
- Publication number
- CN112601212A CN112601212A CN202011542604.0A CN202011542604A CN112601212A CN 112601212 A CN112601212 A CN 112601212A CN 202011542604 A CN202011542604 A CN 202011542604A CN 112601212 A CN112601212 A CN 112601212A
- Authority
- CN
- China
- Prior art keywords
- wifi
- private
- positioning
- address
- private wifi
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W64/00—Locating users or terminals or network equipment for network management purposes, e.g. mobility management
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/80—Services using short range communication, e.g. near-field communication [NFC], radio-frequency identification [RFID] or low energy communication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W84/00—Network topologies
- H04W84/02—Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
- H04W84/10—Small scale networks; Flat hierarchical networks
- H04W84/12—WLAN [Wireless Local Area Networks]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W88/00—Devices specially adapted for wireless communication networks, e.g. terminals, base stations or access point devices
- H04W88/14—Backbone network devices
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a positioning method, a unit and a device thereof aiming at private WIFI of an intranet, wherein the positioning method comprises the following steps: capturing an information packet, identifying an IP address, acquiring an MAC address, widely positioning and accurately positioning, namely monitoring network flow information and capturing a flow information packet; identifying an information packet privately connected with WIFI in the flow information packet, and acquiring a network IP address privately connected with the WIFI; under CMD mode of Microsoft operating system, PING the IP address of private WIFI, and then executing ARP command to obtain the physical MAC address of private WIFI; and identifying the name and the signal strength of the private WIFI according to the obtained MAC address, finding the area with the strongest signal according to the change of the signal strength of the private WIFI, and confirming the accurate position of the private WIFI. The invention integrates the identification function and the positioning function into a whole, enables the identification function to support the positioning function, does not need professional network technicians, and can realize the functions of identifying and accurately positioning the private WIFI only by simple operation, thereby improving the safety of the enterprise intranet.
Description
Technical Field
The invention relates to the technical field of computer intranet communication safety identification, in particular to a positioning method, a unit and a device for intranet private WIFI.
Background
In an intranet environment, access of personal wireless devices such as 360-degree-of-freedom WIFI (wireless fidelity) used by workers is often limited due to safety requirements. However, some workers often privately connect these devices for their own convenience, exposing intranet networks to hazardous environments. In order to identify and remove the illegal WIFI, a professional with network security knowledge is often required to perform troubleshooting and processing, which is laborious and time-consuming.
In the market, some software products can identify that illegal WIFI exists, but cannot locate; some software products have a positioning function, but cannot know whether illegal WIFI exists or not, or cannot realize the positioning function because illegal WIFI sets a password.
Therefore, a device for identifying and positioning illegal WIFI is urgently needed in the field so as to effectively check and guarantee the safety of an intranet.
Disclosure of Invention
In order to overcome the defects of the prior art, the invention aims to solve the technical problems that: how to identify and locate the illegal WIFI so as to achieve the technical effect of effective investigation and processing.
In order to solve the technical problems, the technical scheme adopted by the invention is as follows:
a positioning method aiming at private WIFI of an intranet comprises the following steps:
s1: capturing an information packet;
s2: identifying an IP address;
s3: acquiring an MAC address;
s4: widely positioning;
s5: and (6) accurate positioning.
On the basis of the technical scheme, the invention can be further improved as follows.
Further, the capturing the information packet includes monitoring network traffic information and capturing various traffic information packets.
Further, the identifying the IP address includes identifying a traffic information packet of "suspected private WIFI access" from the captured various traffic information packets, and further acquiring a network IP address of "suspected private WIFI access".
Further, the acquiring the MAC address includes PING the network IP address of the suspected WIFI private connection in the CMD mode of the microsoft operating system, and then executing the ARP command to obtain the physical MAC address of the suspected WIFI private connection.
Further, the widely positioning includes identifying the name and the signal strength of the suspected private WIFI according to the obtained MAC address.
Further, the identified suspected private WIFI name is compared with the official WIFI name of the enterprise, the false-reported WIFI is screened out, and the accurate private WIFI name is obtained.
Further, the accurate positioning comprises finding an area with the strongest signal according to the change of the signal intensity of the private WIFI, and confirming the accurate position of the private WIFI.
In addition, the invention also provides a positioning unit aiming at the private WIFI of the intranet, which is electrically connected with the positioning unit in sequence: the device comprises an information capturing module, an IP identification module, an MAC acquisition module and a positioning module.
Preferably, the information capturing module is used for monitoring network traffic information and capturing various traffic information packets; the IP identification module is used for identifying the flow information packet of private WIFI in the captured various flow information packets so as to obtain a network IP address of the private WIFI; and the MAC acquisition module is used for PING the network IP address of the private WIFI in a CMD mode of the Microsoft operating system and then executing an ARP command to obtain the physical MAC address of the private WIFI.
Preferably, the positioning module is configured to identify a name of a suspected private WIFI and a signal strength according to the acquired MAC address, compare the identified name of the suspected private WIFI with an official WIFI name of an enterprise, screen out a false-alarm WIFI to obtain an accurate private WIFI name, find an area with a strongest signal according to a change in the signal strength of the private WIFI, and confirm an accurate position of the private WIFI.
In addition, the invention also provides a positioning device aiming at the private WIFI of the intranet, which comprises: the embedded type mainboard based on the X86CPU framework, the LCD touch screen, the SSD solid state disk and the wireless module are embedded in the mainboard, a positioning unit aiming at the intranet private connection WIFI is embedded in the mainboard, and the LCD touch screen, the SSD solid state disk and the wireless module are respectively and electrically connected to the mainboard.
Compared with the prior art, the invention has the following technical effects: the WIFI positioning system integrates the identification function and the positioning function, the identification function supports the positioning function, the function of identifying and accurately positioning the private WIFI can be realized only by fool operation without professional network technicians, the safety and the stability of an internal network are improved, and hidden dangers are eliminated.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings used in the description of the embodiments or the prior art will be briefly introduced below, and it is obvious that the drawings in the following description are some embodiments of the present invention, and for those skilled in the art, other drawings can be obtained according to these drawings without creative efforts.
Fig. 1 is a flowchart of the steps of the positioning method for private WIFI access to an intranet according to the present invention;
fig. 2 is a schematic structural diagram of a positioning unit for private WIFI of an intranet according to the present invention;
fig. 3 is a usage display diagram of the positioning device for WIFI private connection to the intranet of the present invention.
In the drawings, the parts names represented by the respective reference numerals are listed as follows:
100-a positioning unit; 101-an information capture module; 102-IP identification module; 103-MAC acquisition module; 104-a positioning module;
10-a positioning device; 110-a main board; 120-LCD touch screen; 130-SSD solid state disk; 140-a wireless module;
201-an intranet router; a J-mirror port;
301-a first PC; 302-a second PC; 303-a third PC; 30N-nth PC.
Detailed Description
In order to make the objects, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are some, but not all, embodiments of the present invention. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Fig. 1 is a flowchart illustrating a positioning method for private WIFI access to an intranet according to the present invention; the positioning method aiming at the private WIFI of the intranet comprises the following steps:
s1: capturing an information packet; specifically, network traffic information is monitored, and various traffic information packets are captured;
s2: identifying an IP address; specifically, a traffic information packet of suspected private WIFI is identified from various captured traffic information packets, and a network IP address of the suspected private WIFI is further obtained;
namely, analyzing the information packet of which the flow accords with the suspected private WIFI characteristic, if not, the area has no private WIFI; if yes, extracting the IP address sending the information packet; the information packet for analyzing the traffic according with the private WIFI feature may be, for example:
1) detecting standard NAT access equipment by using the change of TTL field of IP packet;
2) confirming the number of devices privately connected by the user by using the jumping of the ID identification of the IP packet;
3) detecting the intelligent equipment which is connected with the Internet privately by using a User-Agent field in an HTTP protocol;
4) identifying the carry-on WIFI according to the carry-on WIFI and the back door of the free WIFI;
s3: acquiring an MAC address; specifically, under the CMD mode of the Microsoft operating system, PING the network IP address of the suspected private WIFI, and then executing an ARP command to obtain the physical MAC address of the suspected private WIFI;
for example, if the obtained IP address is 192.168.1.6, then:
C:>PING 192.168.1.6
C:>ARP -A
obtaining: 192.168.1.6, for example: c0-3f-d5-7d-f 3-ac;
the execution purpose of step S3 is to complete the correspondence between the IP address and the MAC, and finally obtain the physical MAC address;
s4: widely positioning; specifically, according to the MAC address acquired in step S3, the name and signal strength of "suspected private WIFI" are identified, and the closer the private WIFI is, the stronger the signal is;
in the step, the identified suspected private WIFI name is compared with the official WIFI name of the enterprise (the official WIFI name of the enterprise needs to be input in advance), and the false-alarm suspected private WIFI is screened out to obtain an accurate private WIFI name;
s5: accurate positioning; specifically, according to the change of the signal intensity of the private WIFI, the area with the strongest signal is found, and the accurate position of the private WIFI is confirmed.
Fig. 2 is a schematic structural diagram of a positioning unit for private WIFI access to an intranet according to the present invention; as shown in the figure, the positioning unit 100 for the intranet private WIFI of the present invention includes: an information grabbing module 101, an IP identification module 102, a MAC obtaining module 103, and a positioning module 104, wherein,
the information capturing module 101 is configured to monitor network traffic information and capture various traffic information packets;
the IP identification module 102 is configured to identify a traffic information packet privately connected to WIFI from the captured various traffic information packets, and further acquire a network IP address privately connected to WIFI;
the MAC acquisition module 103 is used for PING the network IP address of the private WIFI in a CMD mode of a Microsoft operating system and then executing an ARP command to obtain a physical MAC address of the WIFI;
the positioning module 104 is configured to identify a name of a suspected private WIFI and a signal strength according to the obtained MAC address, compare the identified name of the suspected private WIFI with an official WIFI of an enterprise, screen out a false-alarm WIFI to obtain an accurate private WIFI name, further find an area with a strongest signal according to a change in the signal strength of the private WIFI, and confirm an accurate position of the private WIFI.
Please refer to fig. 3, which is a usage display diagram of the positioning system for the WIFI of the private intranet according to the present invention; as shown in the figure, the positioning device 10 for the private WIFI of the intranet of the present invention includes: an embedded motherboard 110 based on an X86CPU architecture, an LCD touch screen 120, an SSD solid state disk 130, and a wireless module 140; wherein the content of the first and second substances,
the main board 110 uses microsoft operating system, in which the positioning unit 100 is embedded; in addition, the motherboard 110 may be provided with one or more of VGA interface, LVDS interface, SATA interface, Mini PCIe interface, USB interface, network interface, RS232 serial interface, and other main interfaces;
the LCD touch screen 120, the SSD solid state disk 130 and the wireless module 140 are electrically connected to the motherboard 110 respectively;
in addition, the motherboard 110 is also electrically connected to the mirror port J of the intranet router 201, and the other ports of the intranet router 201 are used for connecting the office first PC 301, the second PC 302, the third PC 303, … …, and the nth PC 30N; the intranet router can also be a network switch; the mainboard runs the positioning unit, can extract the network IP address of the private WIFI, and then obtains the physical MAC address of the WIFI; then, identifying a signal of private WIFI according to the MAC address, observing the change of the signal intensity of the private WIFI by continuously moving the position of the positioning device in the area, and finding the area with the strongest signal; namely, several networked microcomputers are checked in the area, and meanwhile, whether illegal personal WIFI access is installed in USB ports of the microcomputers or not is judged, and the installed personal WIFI is removed.
In summary, the positioning device for the intranet private-connection WIFI of the invention is a portable hardware device, and is used in the intranet environment of an enterprise, so that the accompanied WIFI of the worker in violation of private connection can be conveniently identified, and the positioning device can be positioned to a specific position, so that the private-connection WIFI can be conveniently removed, and further, the potential safety hazard of the computer intranet can be eliminated. The positioning method for intranet private WIFI can be written in a python or shell script form, customized and periodical automatic execution is carried out by utilizing the timing function of an operating system, and finally accurate positioning is carried out by a worker, so that illegal private WIFI equipment can be found and removed, the operation of network professionals is not needed, and the labor cost and the searching difficulty are reduced.
Finally, it should be noted that: the above embodiments are only used to illustrate the technical solution of the present invention, and not to limit the same; while the invention has been described in detail and with reference to the foregoing embodiments, it will be understood by those skilled in the art that: the technical solutions described in the foregoing embodiments may still be modified, or some or all of the technical features may be equivalently replaced; and the modifications or the substitutions do not make the essence of the corresponding technical solutions depart from the scope of the technical solutions of the embodiments of the present invention.
Claims (11)
1. A positioning method aiming at private WIFI of an intranet is characterized by comprising the following steps:
s1: capturing an information packet;
s2: identifying an IP address;
s3: acquiring an MAC address;
s4: widely positioning;
s5: and (6) accurate positioning.
2. The method of claim 1, wherein capturing the packets further comprises monitoring network traffic information and capturing various packets.
3. The method according to claim 1 or 2, wherein the identifying the IP address further includes identifying a traffic information packet of "suspected private WIFI access" from among the captured traffic information packets, and further acquiring a network IP address of "suspected private WIFI access".
4. The method according to claim 1 or 2, wherein the acquiring the MAC address further comprises PING a network IP address of the suspected WIFI private connection in a CMD mode of the microsoft operating system, and then executing an ARP command to obtain a physical MAC address of the suspected WIFI private connection.
5. The method according to claim 1 or 2, wherein the widely locating further includes identifying a name and a signal strength of "suspected WIFI under private connection" according to the obtained MAC address.
6. The method of claim 5, wherein the broad-based positioning further comprises screening out false-alarm WIFI by comparing the identified suspected private WIFI name with an official WIFI name of the enterprise to obtain an accurate private WIFI name.
7. The method according to claim 1 or 2, wherein the accurate positioning further comprises finding an area with a strongest signal according to a variation of signal strength of the private WIFI, and confirming an accurate position of the private WIFI.
8. The utility model provides a positioning unit to intranet private connection WIFI which characterized in that, including the electricity connection in proper order: the device comprises an information capturing module, an IP identification module, an MAC acquisition module and a positioning module.
9. The positioning unit for private WIFI access to the intranet of claim 8, wherein the information capture module is configured to monitor network traffic information and capture various traffic information packets; the IP identification module is used for identifying the flow information packet of private WIFI in the captured various flow information packets so as to obtain a network IP address of the private WIFI; and the MAC acquisition module is used for PING the network IP address of the private WIFI in a CMD mode of the Microsoft operating system and then executing an ARP command to obtain the physical MAC address of the private WIFI.
10. The positioning unit according to claim 8 or 9, wherein the positioning module is configured to identify a name and a signal strength of "suspected private WIFI access" according to the obtained MAC address, screen out a WIFI with a false alarm by comparing the identified name of the "suspected private WIFI access" with an official WIFI name of an enterprise, obtain an accurate private WIFI access name, find an area with a strongest signal according to a change in the signal strength of the private WIFI access, and confirm an accurate position of the private WIFI access.
11. The utility model provides a positioner to intranet private connection WIFI which characterized in that includes: the positioning unit for the WIFI of the private connection of the intranet is embedded in the mainboard, and the LCD touch screen, the SSD solid state disk and the wireless module are respectively and electrically connected to the mainboard.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011542604.0A CN112601212A (en) | 2020-12-24 | 2020-12-24 | Positioning method, unit and device for private WIFI of intranet |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011542604.0A CN112601212A (en) | 2020-12-24 | 2020-12-24 | Positioning method, unit and device for private WIFI of intranet |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN112601212A true CN112601212A (en) | 2021-04-02 |
Family
ID=75200478
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011542604.0A Pending CN112601212A (en) | 2020-12-24 | 2020-12-24 | Positioning method, unit and device for private WIFI of intranet |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112601212A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114124900A (en) * | 2021-11-03 | 2022-03-01 | 中盈优创资讯科技有限公司 | Method and device for positioning private access small routing equipment |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101286894A (en) * | 2008-05-07 | 2008-10-15 | 中国网络通信集团公司长沙市分公司 | Detection and control method for illegal connection to IP network |
| CN102684897A (en) * | 2011-03-14 | 2012-09-19 | 上海宝信软件股份有限公司 | Method for discovering transmission control protocol/Internet protocol (TCP/IP) network private access equipment |
| CN102752756A (en) * | 2012-06-08 | 2012-10-24 | 深信服网络科技(深圳)有限公司 | Method and device for preventing surfing the Internet by privately connecting wireless access point (AP) |
| CN106254375A (en) * | 2016-09-05 | 2016-12-21 | 北京神州绿盟信息安全科技股份有限公司 | The recognition methods of a kind of hotspot equipment and device |
| CN108366076A (en) * | 2018-03-12 | 2018-08-03 | 国网安徽省电力有限公司池州供电公司 | The detecting system and its detection method of privately owned access in a kind of network |
-
2020
- 2020-12-24 CN CN202011542604.0A patent/CN112601212A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101286894A (en) * | 2008-05-07 | 2008-10-15 | 中国网络通信集团公司长沙市分公司 | Detection and control method for illegal connection to IP network |
| CN102684897A (en) * | 2011-03-14 | 2012-09-19 | 上海宝信软件股份有限公司 | Method for discovering transmission control protocol/Internet protocol (TCP/IP) network private access equipment |
| CN102752756A (en) * | 2012-06-08 | 2012-10-24 | 深信服网络科技(深圳)有限公司 | Method and device for preventing surfing the Internet by privately connecting wireless access point (AP) |
| CN106254375A (en) * | 2016-09-05 | 2016-12-21 | 北京神州绿盟信息安全科技股份有限公司 | The recognition methods of a kind of hotspot equipment and device |
| CN108366076A (en) * | 2018-03-12 | 2018-08-03 | 国网安徽省电力有限公司池州供电公司 | The detecting system and its detection method of privately owned access in a kind of network |
Non-Patent Citations (3)
| Title |
|---|
| JEEPSEN_ZHANG: ""关于检测网络内部私接随身WIFI行为的技术探讨"", 《51CTO博客》 * |
| 无: ""在局域网中找到私接无线路由器(wifi)的具体位置"", 《百度经验》 * |
| 潘艺全: ""识别危险WiFi的6个小技巧"", 《FX361.COM》 * |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114124900A (en) * | 2021-11-03 | 2022-03-01 | 中盈优创资讯科技有限公司 | Method and device for positioning private access small routing equipment |
| CN114124900B (en) * | 2021-11-03 | 2023-08-01 | 中盈优创资讯科技有限公司 | Method and device for positioning private small-route equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108141385B (en) | Cloud-based system and method for managing test configuration of cable test equipment | |
| US20200045073A1 (en) | Test system and method for identifying security vulnerabilities of a device under test | |
| WO2017161964A1 (en) | Communication network inspection method and device, and inspection client terminal | |
| CN114077525A (en) | Abnormal log processing method and device, terminal equipment, cloud server and system | |
| CN112333044B (en) | Shunting equipment performance test method, device and system, electronic equipment and medium | |
| CN112104613B (en) | Honey net testing system based on data flow packet analysis and testing method thereof | |
| CN110851334B (en) | Flow statistics method, electronic equipment, system and medium | |
| CN112601212A (en) | Positioning method, unit and device for private WIFI of intranet | |
| CN105515909A (en) | Data collection test method and device | |
| CN116467110B (en) | Method and system for detecting damage of tablet personal computer | |
| CN110308712B (en) | Fault detection method of electronic equipment, electronic equipment and terminal equipment | |
| CN111585830A (en) | User behavior analysis method, device, equipment and storage medium | |
| CN109936528B (en) | Monitoring method, device, equipment and system | |
| CN116015881A (en) | Penetration test method, device, equipment and storage medium | |
| CN113872819B (en) | Equipment testing method and computer equipment | |
| CN112291347B (en) | HTTP-based network product service and running state monitoring system and method for acquiring test result | |
| CN115643044A (en) | Data processing method, device, server and storage medium | |
| CN111651330B (en) | Data acquisition method, data acquisition device, electronic equipment and computer readable storage medium | |
| WO2012118337A2 (en) | System, method, and computer-readable recording medium for user preference analysis in a web browser | |
| CN109039813B (en) | Method, system and equipment for detecting internet access | |
| US20140331321A1 (en) | Building filter through utilization of automated generation of regular expression | |
| CN112541183B (en) | Data processing method and device, edge computing equipment and storage medium | |
| KR101922594B1 (en) | Wire and wireless access point for detecting status by monitoring status information, apparatus for detecting status of wire and wireless access point and method thereof | |
| CN110808845A (en) | MAC address information acquisition system and method based on WiFi equipment | |
| CN211791555U (en) | Portable electric power special network tester |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20210402 |